$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: l4h7pVVjM26hBJRHhk6l6lgXDSt/2e15cojbQsPJwhw= Subject key identifier: 01:47:9F:28:A1:25:2F:22:E9:EA:92:B1:A9:54:0B:AA:36:AB:AC:8E Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 075A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 0755 Signing time: Sat 18 May 2024 22:19:03 +0000 Manifest this update: Sat 18 May 2024 22:19:02 +0000 Manifest next update: Sat 25 May 2024 22:19:02 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: +ehhyfB0RUm7n4C9Z6JRlBZU0IMyP/ErLv2j6cnJL38=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: Us9s+8uAx54lSxxT1nylNk+h4ZNXtM/yR2j35EIok8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: May 18 22:19:02 2024 GMT Not After : May 25 22:19:02 2024 GMT Subject: CN=66492957-4847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3f:23:72:da:74:b4:5f:7b:48:c1:34:27:25: e3:50:c0:fa:97:57:28:c0:cf:2a:59:eb:16:b1:48: 7c:4f:87:80:9b:28:71:c4:d7:96:a8:67:b5:77:c6: c6:8c:61:30:3e:c1:d4:00:3f:bb:e7:08:75:72:44: 01:5e:15:d2:af:8e:61:13:d8:e9:d6:f9:97:ab:c1: f4:bc:38:ff:23:1f:d7:7f:bc:78:9c:7f:dd:84:4d: ec:bc:2d:7e:6a:b5:ee:6e:9b:80:e2:1a:5e:6c:18: 48:33:90:c6:5d:b7:b4:3a:2e:39:e1:88:38:e0:63: 13:bc:8b:98:a1:68:b2:23:2c:e8:fc:0a:90:0c:1b: a2:dd:e7:64:7f:54:3a:14:a8:61:98:d2:48:a3:c3: be:97:18:e8:4e:12:12:81:45:bf:7e:d7:ba:ac:64: 94:99:91:34:15:35:0a:20:f4:dd:0d:c4:e6:35:58: f6:3d:e4:e4:bd:f7:e1:8b:bd:4b:ef:f5:36:6b:36: 72:ff:8b:c3:2d:7a:13:d5:9e:ee:0e:5a:ef:b7:3b: 53:71:fa:5c:1a:5d:5e:4f:9b:a3:7c:5a:71:c2:8f: b3:32:d2:08:55:d3:0d:33:61:e9:10:6e:f0:e0:7b: 23:c6:e9:ba:d2:96:77:58:1d:3b:67:5f:24:e5:0f: a0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:47:9F:28:A1:25:2F:22:E9:EA:92:B1:A9:54:0B:AA:36:AB:AC:8E X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:0e:25:53:3e:15:62:ee:11:7a:f2:92:c9:f6:32:81:b6:ef: 11:c9:75:0c:80:91:4d:76:76:d0:06:34:0f:7f:92:90:a5:ee: 6c:e8:df:bb:61:68:c5:20:78:6e:3d:d0:4b:1b:6c:47:0c:da: 61:9c:be:d8:83:67:5c:eb:21:9c:31:54:7b:5c:b1:0f:f1:90: bf:28:ce:bd:d9:81:d8:95:dd:86:9c:1b:94:c3:3c:9b:05:5d: ef:4f:c5:3f:8d:28:71:85:1e:88:a1:05:06:04:fe:a7:3b:bb: 61:24:bc:4b:6b:f7:03:11:5b:66:67:ca:c0:bb:22:cf:3f:39: d0:ca:c5:41:61:da:0a:12:2d:99:7c:02:09:7c:48:f1:bd:d6: b5:0d:7a:61:57:45:e9:17:9c:02:dc:6b:ac:35:5a:62:ab:28: 3f:ef:03:ed:21:c8:a5:ca:23:e6:68:41:0c:5e:41:53:1a:24: 64:99:fe:61:6f:68:c4:c4:a4:ed:40:6e:a6:43:7c:dc:63:03: 55:da:fd:bd:5c:e8:58:81:f2:c7:87:8b:98:72:76:86:64:73: 00:a7:20:82:50:96:dc:9e:40:03:72:df:ef:38:c0:a5:12:90: 7c:f1:44:68:02:bd:58:ec:84:b7:bb:01:47:48:36:32:b6:2e: 31:b9:b9:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjQwNTE4MjIxOTAyWhcNMjQwNTI1MjIxOTAyWjAYMRYwFAYD VQQDEw02NjQ5Mjk1Ny00ODQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5j8jctp0tF97SME0JyXjUMD6l1cowM8qWesWsUh8T4eAmyhxxNeWqGe1d8bG jGEwPsHUAD+75wh1ckQBXhXSr45hE9jp1vmXq8H0vDj/Ix/Xf7x4nH/dhE3svC1+ arXubpuA4hpebBhIM5DGXbe0Oi454Yg44GMTvIuYoWiyIyzo/AqQDBui3edkf1Q6 FKhhmNJIo8O+lxjoThISgUW/fte6rGSUmZE0FTUKIPTdDcTmNVj2PeTkvffhi71L 7/U2azZy/4vDLXoT1Z7uDlrvtztTcfpcGl1eT5ujfFpxwo+zMtIIVdMNM2HpEG7w 4Hsjxum60pZ3WB07Z18k5Q+gbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFHnyih JS8i6eqSsalUC6o2q6yOMB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiDiVTPhVi7hF68pLJ9jKBtu8RyXUMgJFNdnbQBjQPf5KQpe5s6N+7 YWjFIHhuPdBLG2xHDNphnL7Yg2dc6yGcMVR7XLEP8ZC/KM692YHYld2GnBuUwzyb BV3vT8U/jShxhR6IoQUGBP6nO7thJLxLa/cDEVtmZ8rAuyLPPznQysVBYdoKEi2Z fAIJfEjxvda1DXphV0XpF5wC3GusNVpiqyg/7wPtIcilyiPmaEEMXkFTGiRkmf5h b2jExKTtQG6mQ3zcYwNV2v29XOhYgfLHh4uYcnaGZHMApyCCUJbcnkADct/vOMCl EpB88URoAr1Y7IS3uwFHSDYyti4xublN -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org